April 15, 2013
As ordered reported by the House Committee on Oversight and Government Reform on March 20, 2013
H.R. 1163 would amend the Federal Information Security Management Act of 2002 (FISMA) to improve the security of federal information technology systems. The legislation would require continuous monitoring of computer systems and would provide the Office of Management and Budget (OMB) and other federal agencies with specific new responsibilities to secure federal information systems. The bill states that no additional funds are authorized to implement the legislation beyond those already authorized or appropriated.
Based on information from the Department of Homeland Security (DHS), OMB, and other major agencies working to ensure the security of federal information systems, CBO estimates that implementing H.R. 1163 would cost $620 million over the 2014-2018 period, assuming that the necessary amounts are made available from appropriated funds. Most of those funds would be spent on salaries, expenses, and computer hardware and software. Enacting the bill would not affect direct spending or revenues; therefore, pay-as-you-go procedures do not apply.
H.R. 1163 contains no intergovernmental or private-sector mandates as defined in the Unfunded Mandates Reform Act and would impose no costs on state, local, or tribal governments.